GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
4,279
Erlang
31
GitHub Actions
21
Go
2,056
Maven
5,000+
npm
3,740
NuGet
668
pip
3,421
Pub
12
RubyGems
891
Rust
873
Swift
36
Unreviewed advisories
All unreviewed
5,000+
6,335 advisories
Filter by severity
A path traversal vulnerability has been reported to affect several QNAP operating system versions...
Moderate
Unreviewed
CVE-2024-37043
was published
Nov 22, 2024
Path Traversal in the Manager component of Wowza Streaming Engine below 4.9.1 allows an...
High
Unreviewed
CVE-2024-52055
was published
Nov 22, 2024
Path Traversal in the Manager component of Wowza Streaming Engine below 4.9.1 allows an...
Moderate
Unreviewed
CVE-2024-52056
was published
Nov 22, 2024
Path Traversal in the Manager component of Wowza Streaming Engine below 4.9.1 allows an...
Moderate
Unreviewed
CVE-2024-52054
was published
Nov 22, 2024
DedeBIZ v6.3.0 was discovered to contain an arbitrary file deletion vulnerability via the...
Critical
Unreviewed
CVE-2024-52771
was published
Nov 20, 2024
Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') vulnerability in...
High
Unreviewed
CVE-2024-52444
was published
Nov 20, 2024
Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') vulnerability in...
High
Unreviewed
CVE-2024-52449
was published
Nov 20, 2024
Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') vulnerability in...
High
Unreviewed
CVE-2024-52448
was published
Nov 20, 2024
Statamic CMS has a Path Traversal in Asset Upload
Moderate
CVE-2024-52600
was published
for
statamic/cms
(Composer)
Nov 19, 2024
A vulnerability in the CLI of Cisco SD-WAN Software could allow an authenticated, local...
High
Unreviewed
CVE-2020-26071
was published
Nov 18, 2024
The pathname of the root directory to a Restricted Directory ('Path Traversal') vulnerability in...
High
Unreviewed
CVE-2024-11303
was published
Nov 18, 2024
A low privileged remote attacker can overwrite an arbitrary file on the filesystem leading to a...
High
Unreviewed
CVE-2024-41971
was published
Nov 18, 2024
The DVC from TRCore has a Path Traversal vulnerability and does not restrict the types of...
Critical
Unreviewed
CVE-2024-11312
was published
Nov 18, 2024
The DVC from TRCore has a Path Traversal vulnerability and does not restrict the types of...
Critical
Unreviewed
CVE-2024-11315
was published
Nov 18, 2024
The DVC from TRCore has a Path Traversal vulnerability and does not restrict the types of...
Critical
Unreviewed
CVE-2024-11313
was published
Nov 18, 2024
The DVC from TRCore has a Path Traversal vulnerability and does not restrict the types of...
Critical
Unreviewed
CVE-2024-11314
was published
Nov 18, 2024
The DVC from TRCore has a Path Traversal vulnerability and does not restrict the types of...
Critical
Unreviewed
CVE-2024-11311
was published
Nov 18, 2024
The DVC from TRCore has a Path Traversal vulnerability, allowing unauthenticated remote attackers...
High
Unreviewed
CVE-2024-11310
was published
Nov 18, 2024
The DVC from TRCore has a Path Traversal vulnerability, allowing unauthenticated remote attackers...
High
Unreviewed
CVE-2024-11309
was published
Nov 18, 2024
The PDF Generator Addon for Elementor Page Builder plugin for WordPress is vulnerable to Path...
High
Unreviewed
CVE-2024-9935
was published
Nov 16, 2024
Unpatched Remote Code Execution in Gogs
High
CVE-2024-44625
was published
for
gogs.io/gogs
(Go)
Nov 15, 2024
IBM Sterling Secure Proxy 6.0.0.0, 6.0.0.1, 6.0.0.2, 6.0.0.3, and 6.1.0.0 could allow a remote...
High
Unreviewed
CVE-2024-41784
was published
Nov 15, 2024
The user avatar upload function in python_book V1.0 has an arbitrary file upload vulnerability.
Critical
Unreviewed
CVE-2024-50649
was published
Nov 15, 2024
yshopmall V1.0 has an arbitrary file upload vulnerability, which can enable RCE or even take over...
Critical
Unreviewed
CVE-2024-50648
was published
Nov 15, 2024
A vulnerability has been found in Landray EKP up to 16.0 and classified as critical. This...
Moderate
Unreviewed
CVE-2024-11239
was published
Nov 15, 2024
ProTip!
Advisories are also available from the
GraphQL API